CWE-157

2 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-157page 1 of 1

CVE-2025-25286CRITICALCVSS 9.8EG 9.8
2025-02-13
Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be possible in web-accessible installations of Homarus in certain c…
CVE-2026-25063HIGHCVSS 7.8EG 7.8
2026-01-29
gradle-completion provides Bash and Zsh completion support for Gradle. A command injection vulnerability was found in gradle-completion up to and including 9.3.0 that allows arbitrary code execution when a user triggers Bash tab completion…

Map vulnerabilities like CWE-157 to your infrastructure

EchelonGraph correlates every CVE — across CWE-157 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →